package com.cskaoyan.controller;

import com.cskaoyan.bean.*;
import com.cskaoyan.config.shiro.MallToken;
import com.cskaoyan.exception.MarketInvalidParameterException;
import com.cskaoyan.util.ValidationUtils;
import org.apache.shiro.SecurityUtils;
import org.apache.shiro.authc.UsernamePasswordToken;
import org.apache.shiro.subject.Subject;
import org.springframework.validation.BindingResult;
import org.springframework.validation.FieldError;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import javax.validation.Valid;
import java.io.Serializable;
import java.util.ArrayList;
import java.util.Map;

//shiro整合之后，在做具体的开发
//响应结果都是JSON，Controller组件上我们都用@RestController注解
@RestController
@RequestMapping("admin/auth")
public class AuthController {

    /**
     * 如果参数比较少，类型比较简单的话，使用map来接收也可以
     */
    //@PostMapping("login")
    /*public BaseRespVo<LoginUserData> login(@RequestBody Map map) {
        String username = (String)map.get("username");
        String password = (String)map.get("password");*/
    @PostMapping("login")
    public BaseRespVo<LoginUserData> login(@Valid @RequestBody User2 user2, BindingResult bindingResult) throws MarketInvalidParameterException {
        ValidationUtils.valid2(bindingResult);

        String username = user2.getUsername();
        String password = user2.getPassword();


        // 将当前用户变为登陆的状态
        Subject subject = SecurityUtils.getSubject();
        // 可以做try-catch，也可以使用@ExceptionHandler来映射异常
        //subject.login(new UsernamePasswordToken(username,password));
        subject.login(new MallToken(username, password, "admin"));

        // 登录之后就可以通过subject来获得信息了
        boolean authenticated = subject.isAuthenticated();
        System.out.println("authenticated = " + authenticated);


        // 下面这部分值应该来源于数据库 → 要知道用户信息principal
        // 你在realm的doGetAuthorizationInfo中的第一个参数放入的是什么，取出的就是什么
        MarketAdmin primaryPrincipal = (MarketAdmin) subject.getPrincipals().getPrimaryPrincipal();
        // 根据marketAdmin的信息来完善下面的信息

        LoginUserData loginUserData = new LoginUserData();
        AdminInfoBean adminInfo = new AdminInfoBean();
        adminInfo.setAvatar("https://wpimg.wallstcn.com/f778738c-e4f8-4870-b634-56703b4acafe.gif");
        adminInfo.setNickName("admin123");
        loginUserData.setAdminInfo(adminInfo);
        // loginUserData.setToken("c4d988f3-e4c5-4e46-b6ce-13b9e008ea20");
        loginUserData.setToken((String) subject.getSession().getId());
        return BaseRespVo.ok(loginUserData);
    }



    @RequestMapping("info")
    public BaseRespVo info(String token) {

        Subject subject = SecurityUtils.getSubject();
        MarketAdmin primaryPrincipal = (MarketAdmin) subject.getPrincipals().getPrimaryPrincipal();
        //根据marketAdmin查询对应的信息

        //开发完shiro之后，再整合
        InfoData infoData = new InfoData();
        infoData.setName("admin123");

        //根据primaryPrincipal做查询
        infoData.setAvatar("https://wpimg.wallstcn.com/f778738c-e4f8-4870-b634-56703b4acafe.gif");
        ArrayList<String> roles = new ArrayList<>();
        roles.add("超级管理员");
        infoData.setRoles(roles);
        ArrayList<String> perms = new ArrayList<>();
        perms.add("*");
        infoData.setPerms(perms);


        return BaseRespVo.ok(infoData);
    }
}
